Overview

overview

10

Static

static

3

f1e324e47c...18.exe

windows7-x64

10

f1e324e47c...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f1e324e47c360a5ed6bbcfd6d6304dbb_JaffaCakes118

  • Size

    195KB

  • Sample

    240922-m4dk1swdlk

  • MD5

    f1e324e47c360a5ed6bbcfd6d6304dbb

  • SHA1

    05e2baf9e540fcd65ed9aecd8724e73a5993332d

  • SHA256

    25a31235eeb2d30c64062ae46c1d959302e74387371662827f530c3310e31df9

  • SHA512

    a698ffd2089b88468004312f9f45c6803088e37585c996992f065e40130a3a0e51a5490f361dc213c3ede97b435cfad231c1220515335888d1c6c8740f5b9edb

  • SSDEEP

    6144:nzX6PvcK83Cl8l2Wi4U7KBl2LN4Mvi2s2C:7K2C0i4ceM+MatB

Score
10/10
modiloaderdiscoverytrojan

Malware Config

Targets

    • Target

      f1e324e47c360a5ed6bbcfd6d6304dbb_JaffaCakes118

    • Size

      195KB

    • MD5

      f1e324e47c360a5ed6bbcfd6d6304dbb

    • SHA1

      05e2baf9e540fcd65ed9aecd8724e73a5993332d

    • SHA256

      25a31235eeb2d30c64062ae46c1d959302e74387371662827f530c3310e31df9

    • SHA512

      a698ffd2089b88468004312f9f45c6803088e37585c996992f065e40130a3a0e51a5490f361dc213c3ede97b435cfad231c1220515335888d1c6c8740f5b9edb

    • SSDEEP

      6144:nzX6PvcK83Cl8l2Wi4U7KBl2LN4Mvi2s2C:7K2C0i4ceM+MatB

    Score
    10/10
    modiloaderdiscoverytrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks